loofah 2.4.0 → 2.9.0

data/lib/loofah/version.rb

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+module Loofah
+  # The version of Loofah you are using
+  VERSION = "2.9.0"
+end

data/lib/loofah/xml/document_fragment.rb

@@ -13,7 +13,7 @@ module Loofah
         #  constructor. Applications should use Loofah.fragment to
         #  parse a fragment.
         #
-        def parse tags
+        def parse(tags)
           doc = Loofah::XML::Document.new
           doc.encoding = tags.encoding.name if tags.respond_to?(:encoding)
           self.new(doc, tags)

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: loofah
 version: !ruby/object:Gem::Version
-  version: 2.4.0
+  version: 2.9.0
 platform: ruby
 authors:
 - Mike Dalessio
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-11-25 00:00:00.000000000 Z
+date: 2021-01-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: nokogiri
@@ -45,28 +45,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '12.3'
+        version: '13.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '12.3'
+        version: '13.0'
 - !ruby/object:Gem::Dependency
   name: minitest
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.2'
+        version: '5.14'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.2'
+        version: '5.14'
 - !ruby/object:Gem::Dependency
   name: rr
   requirement: !ruby/object:Gem::Requirement
@@ -87,98 +87,42 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 2.2.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: 2.2.0
-- !ruby/object:Gem::Dependency
-  name: hoe-gemspec
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '1.0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '1.0'
-- !ruby/object:Gem::Dependency
-  name: hoe-debugging
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '2.2'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '2.2'
 - !ruby/object:Gem::Dependency
-  name: hoe-bundler
+  name: concourse
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.5'
+        version: '0.33'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.5'
+        version: '0.33'
 - !ruby/object:Gem::Dependency
-  name: hoe-git
+  name: rubocop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.6'
+        version: '1.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.6'
-- !ruby/object:Gem::Dependency
-  name: concourse
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.26.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.26.0
-- !ruby/object:Gem::Dependency
-  name: rubocop
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.76.0
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 0.76.0
+        version: '1.1'
 - !ruby/object:Gem::Dependency
   name: rdoc
   requirement: !ruby/object:Gem::Requirement
@@ -200,19 +144,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '7'
 - !ruby/object:Gem::Dependency
-  name: hoe
+  name: hoe-markdown
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.20'
+        version: '1.3'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.20'
+        version: '1.3'
 description: |-
   Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built on top of Nokogiri.
 
@@ -224,25 +168,12 @@ email:
 - bryan@brynary.com
 executables: []
 extensions: []
-extra_rdoc_files:
-- CHANGELOG.md
-- MIT-LICENSE.txt
-- Manifest.txt
-- README.md
-- SECURITY.md
+extra_rdoc_files: []
 files:
-- ".gemtest"
 - CHANGELOG.md
-- Gemfile
 - MIT-LICENSE.txt
-- Manifest.txt
 - README.md
-- Rakefile
 - SECURITY.md
-- benchmark/benchmark.rb
-- benchmark/fragment.html
-- benchmark/helper.rb
-- benchmark/www.slashdot.com.html
 - lib/loofah.rb
 - lib/loofah/elements.rb
 - lib/loofah/helpers.rb
@@ -255,32 +186,20 @@ files:
 - lib/loofah/metahelpers.rb
 - lib/loofah/scrubber.rb
 - lib/loofah/scrubbers.rb
+- lib/loofah/version.rb
 - lib/loofah/xml/document.rb
 - lib/loofah/xml/document_fragment.rb
-- test/assets/msword.html
-- test/assets/testdata_sanitizer_tests1.dat
-- test/helper.rb
-- test/html5/test_sanitizer.rb
-- test/html5/test_scrub.rb
-- test/integration/test_ad_hoc.rb
-- test/integration/test_helpers.rb
-- test/integration/test_html.rb
-- test/integration/test_scrubbers.rb
-- test/integration/test_xml.rb
-- test/unit/test_api.rb
-- test/unit/test_encoding.rb
-- test/unit/test_helpers.rb
-- test/unit/test_scrubber.rb
-- test/unit/test_scrubbers.rb
 homepage: https://github.com/flavorjones/loofah
 licenses:
 - MIT
 metadata:
   homepage_uri: https://github.com/flavorjones/loofah
+  source_code_uri: https://github.com/flavorjones/loofah
+  bug_tracker_uri: https://github.com/flavorjones/loofah/issues
+  changelog_uri: https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md
+  documentation_uri: https://www.rubydoc.info/gems/loofah/
 post_install_message: 
-rdoc_options:
-- "--main"
-- README.md
+rdoc_options: []
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
@@ -294,7 +213,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.1.4
 signing_key: 
 specification_version: 4
 summary: Loofah is a general library for manipulating and transforming HTML/XML documents

data/Gemfile

@@ -1,23 +0,0 @@
-# -*- ruby -*-
-
-# DO NOT EDIT THIS FILE. Instead, edit Rakefile, and run `rake bundler:gemfile`.
-
-source "https://rubygems.org/"
-
-gem "nokogiri", ">=1.5.9"
-gem "crass", "~>1.0.2"
-
-gem "rake", "~>12.3", :group => [:development, :test]
-gem "minitest", "~>2.2", :group => [:development, :test]
-gem "rr", "~>1.2.0", :group => [:development, :test]
-gem "json", "~>2.2.0", :group => [:development, :test]
-gem "hoe-gemspec", "~>1.0", :group => [:development, :test]
-gem "hoe-debugging", "~>2.0", :group => [:development, :test]
-gem "hoe-bundler", "~>1.5", :group => [:development, :test]
-gem "hoe-git", "~>1.6", :group => [:development, :test]
-gem "concourse", ">=0.26.0", :group => [:development, :test]
-gem "rubocop", ">=0.76.0", :group => [:development, :test]
-gem "rdoc", ">=4.0", "<7", :group => [:development, :test]
-gem "hoe", "~>3.20", :group => [:development, :test]
-
-# vim: syntax=ruby

data/Manifest.txt

@@ -1,41 +0,0 @@
-.gemtest
-CHANGELOG.md
-Gemfile
-MIT-LICENSE.txt
-Manifest.txt
-README.md
-Rakefile
-SECURITY.md
-benchmark/benchmark.rb
-benchmark/fragment.html
-benchmark/helper.rb
-benchmark/www.slashdot.com.html
-lib/loofah.rb
-lib/loofah/elements.rb
-lib/loofah/helpers.rb
-lib/loofah/html/document.rb
-lib/loofah/html/document_fragment.rb
-lib/loofah/html5/libxml2_workarounds.rb
-lib/loofah/html5/safelist.rb
-lib/loofah/html5/scrub.rb
-lib/loofah/instance_methods.rb
-lib/loofah/metahelpers.rb
-lib/loofah/scrubber.rb
-lib/loofah/scrubbers.rb
-lib/loofah/xml/document.rb
-lib/loofah/xml/document_fragment.rb
-test/assets/msword.html
-test/assets/testdata_sanitizer_tests1.dat
-test/helper.rb
-test/html5/test_sanitizer.rb
-test/html5/test_scrub.rb
-test/integration/test_ad_hoc.rb
-test/integration/test_helpers.rb
-test/integration/test_html.rb
-test/integration/test_scrubbers.rb
-test/integration/test_xml.rb
-test/unit/test_api.rb
-test/unit/test_encoding.rb
-test/unit/test_helpers.rb
-test/unit/test_scrubber.rb
-test/unit/test_scrubbers.rb

data/Rakefile

@@ -1,91 +0,0 @@
-require "rubygems"
-require "hoe"
-require "concourse"
-
-Hoe.plugin :git
-Hoe.plugin :gemspec
-Hoe.plugin :bundler
-Hoe.plugin :debugging
-
-Hoe.spec "loofah" do
-  developer "Mike Dalessio", "mike.dalessio@gmail.com"
-  developer "Bryan Helmkamp", "bryan@brynary.com"
-
-  self.extra_rdoc_files = FileList["*.md"]
-  self.history_file = "CHANGELOG.md"
-  self.readme_file = "README.md"
-  self.license "MIT"
-
-  extra_deps << ["nokogiri", ">=1.5.9"]
-  extra_deps << ["crass", "~> 1.0.2"]
-
-  extra_dev_deps << ["rake", "~> 12.3"]
-  extra_dev_deps << ["minitest", "~>2.2"]
-  extra_dev_deps << ["rr", "~>1.2.0"]
-  extra_dev_deps << ["json", "~> 2.2.0"]
-  extra_dev_deps << ["hoe-gemspec", "~> 1.0"]
-  extra_dev_deps << ["hoe-debugging", "~> 2.0"]
-  extra_dev_deps << ["hoe-bundler", "~> 1.5"]
-  extra_dev_deps << ["hoe-git", "~> 1.6"]
-  extra_dev_deps << ["concourse", ">=0.26.0"]
-  extra_dev_deps << ["rubocop", ">=0.76.0"]
-end
-
-task :gemspec do
-  system %q(rake debug_gem | grep -v "^\(in " > loofah.gemspec)
-end
-
-task :redocs => :fix_css
-task :docs => :fix_css
-task :fix_css do
-  better_css = <<-EOT
-    .method-description pre {
-      margin                    : 1em 0 ;
-    }
-
-    .method-description ul {
-      padding                   : .5em 0 .5em 2em ;
-    }
-
-    .method-description p {
-      margin-top                : .5em ;
-    }
-
-    #main ul, div#documentation ul {
-      list-style-type           : disc ! IMPORTANT ;
-      list-style-position       : inside ! IMPORTANT ;
-    }
-
-    h2 + ul {
-      margin-top                : 1em;
-    }
-  EOT
-  puts "* fixing css"
-  File.open("doc/rdoc.css", "a") { |f| f.write better_css }
-end
-
-desc "generate and upload docs to rubyforge"
-task :doc_upload_to_rubyforge => :docs do
-  Dir.chdir "doc" do
-    system "rsync -avz --delete * rubyforge.org:/var/www/gforge-projects/loofah/loofah"
-  end
-end
-
-desc "generate safelists from W3C specifications"
-task :generate_safelists do
-  load "tasks/generate-safelists"
-end
-
-task :rubocop => [:rubocop_security, :rubocop_frozen_string_literals]
-task :rubocop_security do
-  sh "rubocop lib --only Security"
-end
-task :rubocop_frozen_string_literals do
-  sh "rubocop lib --auto-correct --only Style/FrozenStringLiteralComment"
-end
-Rake::Task[:test].prerequisites << :rubocop
-
-Concourse.new("loofah", fly_target: "ci") do |c|
-  c.add_pipeline "loofah", "loofah.yml"
-  c.add_pipeline "loofah-pr", "loofah-pr.yml"
-end

data/benchmark/benchmark.rb

@@ -1,149 +0,0 @@
-#!/usr/bin/env ruby
-require "#{File.dirname(__FILE__)}/helper.rb"
-
-def compare_scrub_methods
-  snip = "<div>foo</div><foo>fuxx <b>quux</b></foo><script>i have a chair</script>"
-  puts "starting with:\n#{snip}"
-  puts
-  puts RailsSanitize.new.sanitize(snip) # => Rails.sanitize / scrub!(:prune).to_s
-  puts Loofah::Helpers.sanitize(snip)
-  puts "--"
-  puts RailsSanitize.new.strip_tags(snip) # => Rails.strip_tags / parse().text
-  puts Loofah::Helpers.strip_tags(snip)
-  puts "--"
-  puts Sanitize.clean(snip, Sanitize::Config::RELAXED) # => scrub!(:strip).to_s
-  puts Loofah.scrub_fragment(snip, :strip).to_s
-  puts "--"
-  puts HTML5libSanitize.new.sanitize(snip) # => scrub!(:escape).to_s
-  puts Loofah.scrub_fragment(snip, :escape).to_s
-  puts "--"
-  puts HTMLFilter.new.filter(snip)
-  puts Loofah.scrub_fragment(snip, :strip).to_s
-  puts
-end
-
-module TestSet
-  def test_set options={}
-    scale = options[:rehearse] ? 10 : 1
-    puts self.class.name
-
-    n = 100 / scale
-    puts "  Large document, #{BIG_FILE.length} bytes (x#{n})"
-    bench BIG_FILE, n, false
-    puts
-
-    n = 1000 / scale
-    puts "  Small fragment, #{FRAGMENT.length} bytes (x#{n})"
-    bench FRAGMENT, n, true
-    puts
-
-    n = 10_000 / scale
-    puts "  Text snippet, #{SNIPPET.length} bytes (x#{n})"
-    bench SNIPPET, n, true
-    puts
-  end
-end
-
-class HeadToHead < Measure
-end
-
-class HeadToHeadRailsSanitize < Measure
-  include TestSet
-  def bench(content, ntimes, fragment_p)
-    clear_measure
-
-    measure "Loofah::Helpers.sanitize", ntimes do
-      Loofah::Helpers.sanitize content
-    end
-
-    sanitizer = RailsSanitize.new
-    measure "ActionView sanitize", ntimes do
-      sanitizer.sanitize(content)
-    end
-  end
-end
-
-class HeadToHeadRailsStripTags < Measure
-  include TestSet
-  def bench(content, ntimes, fragment_p)
-    clear_measure
-
-    measure "Loofah::Helpers.strip_tags", ntimes do
-      Loofah::Helpers.strip_tags content
-    end
-
-    sanitizer = RailsSanitize.new
-    measure "ActionView strip_tags", ntimes do
-      sanitizer.strip_tags(content)
-    end
-  end
-end
-
-class HeadToHeadSanitizerSanitize < Measure
-  include TestSet
-  def bench(content, ntimes, fragment_p)
-    clear_measure
-
-    measure "Loofah :strip", ntimes do
-      if fragment_p
-        Loofah.scrub_fragment(content, :strip).to_s
-      else
-        Loofah.scrub_document(content, :strip).to_s
-      end
-    end
-
-    measure "Sanitize.clean", ntimes do
-      Sanitize.clean(content, Sanitize::Config::RELAXED)
-    end
-  end
-end
-
-class HeadToHeadHtml5LibSanitize < Measure
-  include TestSet
-  def bench(content, ntimes, fragment_p)
-    clear_measure
-
-    measure "Loofah :escape", ntimes do
-      if fragment_p
-        Loofah.scrub_fragment(content, :escape).to_s
-      else
-        Loofah.scrub_document(content, :escape).to_s
-      end
-    end
-
-    html5_sanitizer = HTML5libSanitize.new
-    measure "HTML5lib.sanitize", ntimes do
-      html5_sanitizer.sanitize(content)
-    end
-  end
-end
-
-class HeadToHeadHTMLFilter < Measure
-  include TestSet
-  def bench(content, ntimes, fragment_p)
-    clear_measure
-
-    measure "Loofah::Helpers.sanitize", ntimes do
-      Loofah::Helpers.sanitize content
-    end
-
-    sanitizer = HTMLFilter.new
-    measure "HTMLFilter.filter", ntimes do
-      sanitizer.filter(content)
-    end
-  end
-end
-
-puts "Nokogiri version: #{Nokogiri::VERSION_INFO.inspect}"
-puts "Loofah version: #{Loofah::VERSION.inspect}"
-
-benches = []
-benches << HeadToHeadRailsSanitize.new
-benches << HeadToHeadRailsStripTags.new
-benches << HeadToHeadSanitizerSanitize.new
-benches << HeadToHeadHtml5LibSanitize.new
-benches << HeadToHeadHTMLFilter.new
-puts "---------- rehearsal ----------"
-benches.each { |bench| bench.test_set :rehearse => true }
-puts "---------- realsies ----------"
-benches.each { |bench| bench.test_set }